14.161.2.93 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Viet Nam

运营商(isp): Vietnam Posts and Telecommunications Group

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 16-03-2020 05:10:10.	2020-03-16 20:32:31

相同子网IP讨论:

IP	类型	评论内容	时间
14.161.27.203	attack	Dovecot Invalid User Login Attempt.	2020-08-24 23:33:50
14.161.252.121	attack	Unauthorized connection attempt detected from IP address 14.161.252.121 to port 445 [T]	2020-08-16 03:21:10
14.161.27.203	attackbots	(imapd) Failed IMAP login from 14.161.27.203 (VN/Vietnam/static.vnpt.vn): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Aug 14 08:05:39 ir1 dovecot[3110802]: imap-login: Disconnected (auth failed, 1 attempts in 28 secs): user=, method=PLAIN, rip=14.161.27.203, lip=5.63.12.44, TLS, session=<1iq5G86sg+QOoRvL>	2020-08-14 17:21:05
14.161.23.176	attackspam	Unauthorized connection attempt from IP address 14.161.23.176 on Port 445(SMB)	2020-08-11 20:03:19
14.161.224.177	attack	" "	2020-08-06 01:10:43
14.161.26.179	attack	Unauthorized connection attempt from IP address 14.161.26.179 on Port 445(SMB)	2020-08-02 04:09:55
14.161.27.203	attack	Dovecot Invalid User Login Attempt.	2020-07-26 07:04:07
14.161.2.124	attack	Unauthorized connection attempt detected from IP address 14.161.2.124 to port 445	2020-07-22 16:53:52
14.161.28.19	attack	Unauthorized connection attempt from IP address 14.161.28.19 on Port 445(SMB)	2020-07-20 00:09:25
14.161.242.223	attackspambots	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-07-15 08:23:26
14.161.25.55	attackbotsspam	20/7/7@23:42:51: FAIL: Alarm-Network address from=14.161.25.55 20/7/7@23:42:52: FAIL: Alarm-Network address from=14.161.25.55 ...	2020-07-08 17:00:30
14.161.27.144	attackspam	Failed password for invalid user from 14.161.27.144 port 46244 ssh2	2020-07-07 08:07:35
14.161.29.176	attackspambots	2020-07-0622:59:401jsYDE-0005Gh-EV\<=info@whatsup2013.chH=\(localhost\)[113.162.177.107]:59121P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2980id=0ebc5d444f64b142619f693a31e5dc7053b07f6808@whatsup2013.chT="Yourneighborhoodsweetheartsarecravingforsex"formanjunathprakruthi99@gmail.comrogerlyons3476@gmail.comtroubles92530@gmail.com2020-07-0623:02:091jsYFb-0005TR-Vk\<=info@whatsup2013.chH=\(localhost\)[14.161.29.176]:43808P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2997id=ae1becc6cde633c0e31debb8b3675ef2d132393b20@whatsup2013.chT="Wouldliketohumpsomewomennearyou\?"forescuejy@gmail.comhcwcallcott@hotmail.comjesusurbina071@gmail.com2020-07-0623:00:101jsYDh-0005Kx-NH\<=info@whatsup2013.chH=\(localhost\)[222.254.18.99]:57053P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2991id=880dbbe8e3c8e2ea7673c5698efad0c59f79f5@whatsup2013.chT="Doyouwanttofuckcertainhottiesinyourneighborhoo	2020-07-07 06:16:54
14.161.23.236	attack	Dovecot Invalid User Login Attempt.	2020-07-01 10:18:37
14.161.253.142	attackspam	SMB Server BruteForce Attack	2020-06-17 19:51:21

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 14.161.2.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15145
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;14.161.2.93.			IN	A

;; AUTHORITY SECTION:
.			424	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031600 1800 900 604800 86400

;; Query time: 49 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 16 20:32:27 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

93.2.161.14.in-addr.arpa domain name pointer static.vnpt.vn.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
93.2.161.14.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
92.222.92.114	attackbots	Invalid user edward from 92.222.92.114 port 51120	2020-02-28 09:33:15
218.29.83.38	attack	Invalid user its from 218.29.83.38 port 60916	2020-02-28 09:13:05
95.85.26.23	attackspambots	Invalid user dcc from 95.85.26.23 port 50570	2020-02-28 09:32:21
210.209.123.117	attack	Total attacks: 2	2020-02-28 09:14:00
159.65.81.187	attackbots	2020-02-28T00:39:33.740230host3.slimhost.com.ua sshd[3948797]: Failed password for root from 159.65.81.187 port 58684 ssh2 2020-02-28T00:55:25.988613host3.slimhost.com.ua sshd[3965917]: Invalid user test from 159.65.81.187 port 56576 2020-02-28T00:55:25.994222host3.slimhost.com.ua sshd[3965917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.81.187 2020-02-28T00:55:25.988613host3.slimhost.com.ua sshd[3965917]: Invalid user test from 159.65.81.187 port 56576 2020-02-28T00:55:28.030196host3.slimhost.com.ua sshd[3965917]: Failed password for invalid user test from 159.65.81.187 port 56576 ssh2 ...	2020-02-28 09:22:51
107.170.192.131	attackspam	Invalid user igor from 107.170.192.131 port 52667	2020-02-28 09:29:52
60.251.229.67	attack	Feb 28 02:44:32 server sshd\[15842\]: Invalid user rusty from 60.251.229.67 Feb 28 02:44:32 server sshd\[15842\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60-251-229-67.hinet-ip.hinet.net Feb 28 02:44:34 server sshd\[15842\]: Failed password for invalid user rusty from 60.251.229.67 port 10249 ssh2 Feb 28 03:37:15 server sshd\[27817\]: Invalid user a from 60.251.229.67 Feb 28 03:37:15 server sshd\[27817\]: Failed none for invalid user a from 60.251.229.67 port 10249 ssh2 ...	2020-02-28 09:37:05
64.227.70.114	attackbotsspam	Feb 27 17:13:24 XXX sshd[3797]: Invalid user fake from 64.227.70.114 Feb 27 17:13:24 XXX sshd[3797]: Received disconnect from 64.227.70.114: 11: Bye Bye [preauth] Feb 27 17:13:24 XXX sshd[3799]: Invalid user admin from 64.227.70.114 Feb 27 17:13:24 XXX sshd[3799]: Received disconnect from 64.227.70.114: 11: Bye Bye [preauth] Feb 27 17:13:24 XXX sshd[3801]: User r.r from 64.227.70.114 not allowed because none of user's groups are listed in AllowGroups Feb 27 17:13:24 XXX sshd[3801]: Received disconnect from 64.227.70.114: 11: Bye Bye [preauth] Feb 27 17:13:25 XXX sshd[3803]: Invalid user ubnt from 64.227.70.114 Feb 27 17:13:25 XXX sshd[3803]: Received disconnect from 64.227.70.114: 11: Bye Bye [preauth] Feb 27 17:13:25 XXX sshd[3806]: Invalid user guest from 64.227.70.114 Feb 27 17:13:25 XXX sshd[3806]: Received disconnect from 64.227.70.114: 11: Bye Bye [preauth] Feb 27 17:13:25 XXX sshd[3808]: Invalid user support from 64.227.70.114 Feb 27 17:13:26 XXX sshd[3808]: Rece........ -------------------------------	2020-02-28 09:36:08
198.46.135.194	attackspambots	02/27/2020-18:17:33.332310 198.46.135.194 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-02-28 09:04:23
129.28.191.55	attackspambots	Invalid user ling from 129.28.191.55 port 33092	2020-02-28 09:24:54
185.143.223.166	attackspam	2020-02-28T01:12:22.320761+01:00 lumpi kernel: [8138562.241545] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=185.143.223.166 DST=78.46.199.189 LEN=60 TOS=0x00 PREC=0x00 TTL=55 ID=1933 DF PROTO=TCP SPT=26362 DPT=25 WINDOW=7300 RES=0x00 SYN URGP=0 ...	2020-02-28 08:59:20
120.132.12.162	attackspam	SSH brute force	2020-02-28 09:26:56
74.101.130.157	attackspam	Feb 28 02:18:04 sshd\[25507\]: Invalid user mapred from 74.101.130.157Feb 28 02:18:06 sshd\[25507\]: Failed password for invalid user mapred from 74.101.130.157 port 36872 ssh2 ...	2020-02-28 09:35:54
178.33.67.12	attackbotsspam	Invalid user cactiuser from 178.33.67.12 port 39436	2020-02-28 09:20:31
188.120.229.156	attack	Invalid user smart from 188.120.229.156 port 46766	2020-02-28 09:17:31

最近上报的IP列表

52.101.96.106	79.170.73.29	85.121.92.151	125.113.72.45
81.206.208.39	124.165.46.190	82.127.126.21	122.30.226.84
38.230.207.171	69.163.162.211	77.130.236.193	115.79.203.22
3.120.243.185	125.77.30.109	120.89.89.99	189.141.23.91
76.253.45.153	144.172.71.182	245.12.68.216	144.91.64.3